down.tututool.com

Xiamen eName Network Co., Ltd.

Domain Information

The domain down.tututool.com registered by Xiamen eName Network Co., Ltd. was initially registered in June of 2011 through ENAME TECHNOLOGY CO., LTD.. The hosted servers are located in Hangzhou, Zhejiang within China which resides on the Asia Pacific Network Information Centre network.
Remove Malware from down.tututool.com - Powered by Reason Core Security
Registrar:
ENAME TECHNOLOGY CO., LTD.

Server location:
Zhejiang, China (CN)

Create date:
Tuesday, June 21, 2011

Expires date:
Friday, June 21, 2019

Updated date:
Saturday, August 10, 2013

ASN:
AS37963 CNNIC-ALIBABA-CN-NET-AP Hangzhou Alibaba Advertising Co.,Ltd.,CN

Root domain:

Google Safe Browsing:
malware

Scan engine
Details
Detections

McAfee
Artemis!685658F57A4C, Artemis!DD91C1DD42D1, Artemis!69DCE5295AD9
75.00%

avast!
Win32:Rootkit-gen [Rtk], Win32:Malware-gen
75.00%

Trend Micro House Call
TROJ_GEN.F47V0509, Suspicious_GEN.F47V0710
50.00%

McAfee Web Gateway
Artemis!685658F57A4C
50.00%

Vba32 AntiVirus
suspected of Trojan.Downloader.gen.h
50.00%

IKARUS anti.virus
Win32.Malware
50.00%

Malwarebytes
Trojan.Agent.NS
25.00%

Kingsoft AntiVirus
Win32.Troj.Adspread.Hh.(kcloud)
25.00%

SUPERAntiSpyware
Trojan.Agent/Gen-Rootkit
25.00%

Dr.Web
BackDoor.Infector.133
25.00%

Antiy Labs AVL
Trojan/Win32.SGeneric
25.00%

The domain down.tututool.com has been seen to resolve to the following 7 IP addresses.

September 5, 2014

ip28.hichina.com
September 5, 2014

September 5, 2014

ip28.hichina.com
March 15, 2014

ip28.hichina.com
March 15, 2014

AY140120154205Z
March 15, 2014

AY140120154204Z
March 15, 2014

File downloads found at URLs served by down.tututool.com.

7 / 68      (Malware)

4 / 68      (inconclusive)

7 / 68      (Malware)

7 / 68      (Malware)

1 / 68      (inconclusive)

1 / 68      (inconclusive)

1 / 68      (inconclusive)

1 / 68      (inconclusive)

URL:
http://down.tututool.com/

Web server:
ASP.NET (ASP.NET) (ASP.NET) (ASP.NET)

Remove Malware from down.tututool.com - Powered by Reason Core Security